-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Germans devise attacks on Windows BitLocker
,----[ Quote ]
| German researchers have devised five
| methods that determined attackers can use
| to bypass hard-drive encryption in recent
| versions of Microsoft operating systems.
`----
http://www.theregister.co.uk/2009/12/05/windows_bitlocker_attacks/
Thanksgiving Webcam Promo Leads to Malware
,----[ Quote ]
| The US$10 webcam that Anna Giesman bought
| her daughter at Office Depot over the
| Thanksgiving weekend sounds like one of
| those deals that's too good to be true.
| And for her, it was.
|
| A week later, she's worried and upset
| because a CD that came with the camera
| contained a Web link that apparently
| infected her PC with fake antivirus
| software.
`----
http://tech.yahoo.com/news/pcworld/20091204/tc_pcworld/thanksgivingwebcampromoleadstomalware
Man loses fight against firm that suffered data breach
,----[ Quote ]
| A Missouri man has lost his legal battle
| against an online prescription processor
| that suffered a security breach that
| exposed highly sensitive subscriber
| information.
|
| John Amburgy alleged that Express Scripts
| was negligent because it failed to
| adequately safeguard customer data,
| including names, dates of birth, social
| security numbers, and prescription drug
| histories. He argued that the breach in
| October 2008 that exposed an unknown
| number of subscribers' details put him at
| risk of identity theft for which he was
| entitled to compensation.
`----
http://www.theregister.co.uk/2009/12/03/data_breach_plaintiff_loses/
Clientless SSL VPN Products Open Web Browser Security Hole
,----[ Quote ]
| US-CERT has issued a warning about
| impacting dozens of clientless SSL VPN
| products it says can be exploited to break
| Web browser security.
`----
http://securitywatch.eweek.com/browsers/clientless_ssl_vpn_products_open_web_browser_security_hole.html
Recent:
What Windows Autorun Has Wrought
,----[ Quote ]
| A new report by Microsoft shows that the two
| most prevalent threats to Windows PCs in the
| first half of 2009 were malicious programs
| that have been aided mightily in their spread
| by a decision by Microsoft to allow the
| contents of removable media -- such as USB
| thumb drives -- to load automatically when
| inserted into Windows machines.
|
| In its latest "Security Intelligence Report,"
| Microsoft counted the number of threats
| detected by its anti-malware desktop
| products, and found that the Conficker worm,
| along with a Trojan horse program called
| Taterf which steals passwords and license
| keys for popular computer games, were
| detected on 5.21 million and 4.91 million
| Windows computers, respectively.
`----
http://voices.washingtonpost.com/securityfix/2009/11/what_windows_autorun_hath_wrou.html?wprss=securityfix
Microsoft COFEE, Some of the Most Illegal Software You Can Pirate
,----[ Quote ]
| Apparently Microsoft's COFEE software that
| helps law enforcement grab data from password
| protected or encrypted sources is leaking all
| over the internet. So not only can you steal
| the software, but break the law by using it
| too.
`----
http://gizmodo.com/5399377/microsoft-cofee-some-of-the-most-illegal-software-you-can-pirate
Siren.gif: Microsoft COFEE law enforcement tool leaks all over the Internet~!
,----[ Quote ]
| It was one of the most sought after
| applications on the Internet until it was
| leaked earlier today. And now that itâs out
| thereâand it is all over the place, easily
| findable by anyone able to use a search
| engineâwe can all move on with our lives.
| Yes, Microsoft COFEE, the law enforcement
| tool that mystified so many of us (including
| Gizmodo~! and Ars Technica~!), is now
| available to download. If only there were a
| âbayâ of some sort where, I donât know,
| pirates hang outâ
`----
http://www.crunchgear.com/2009/11/06/siren-gif-microsoft-cofee-law-enforcement-tool-leaks-all-over-the-internet/
Linux comes with source code, so such mischievous hacks are impossible to sneak in.
What's the point of encryption if it's broken _by design_?
Related:
Police start notifying botnet victims
,----[ Quote ]
| Police in the Netherlands claim a world's first in warning victims whose
| computers were infected by a botnet that was shut down last week. The victims
| will be forwarded to a special Web page offering instructions on cleaning up
| their systems.
|
| The high-tech crime unit of the police started issuing the warnings on
| Wednesday. Users with infected systems are automatically sent a special page
| when they log onto the Internet.
`----
http://www.linuxworld.com.au/index.php?id=481793015&rid=-50
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAksbtQsACgkQU4xAY3RXLo7teQCfQbWrbzcgdQ7r1f/hbfBg7LUH
3/4An1IczMPhRxEN05QXSLjlOcyAdtFY
=yzlG
-----END PGP SIGNATURE-----
|
|
